[Remote] Threat Intelligence Analyst - Remote
Note: The job is a remote job and is open to candidates in USA. Center for Internet Security is dedicated to enhancing cybersecurity and is seeking a Threat Intelligence Analyst for their Countering Hybrid Threats department. This role involves utilizing data and intelligence techniques to identify and analyze malicious activities, and effectively communicating findings to drive countermeasures.
Responsibilities
- Identify emerging operations and trends based on extensive research into cyber, physical, and information related threat activity to determine pertinent communications, countermeasures, and recommendations for decision makers, with minimal assistance or oversight
- Use a Threat Intelligence Platform (TIP) to collect, organize, correlate, and analyze cyber threat data from various sources to extract relevant and timely indicators for sharing with members in near real-time
- Implement data analysis practices to assess trends and patterns of cyber, physical, and information operations networks and aid in determining potential and expected impacts
- Conduct cyber technical analysis of malicious and suspicious code to understand the nature of the threat and to extract unique attributes for proactive defense
- Identify, monitor, track, and catalog threat actors, their ideologies, and their tactics by leveraging commercial and open-source intelligence collection tools
- Leverage blockchain analysis tools to trace cryptocurrency transactions and identify malicious activity
- Generate briefing material, written products, and simple graphics to convey analysis both verbally and in writing for key stakeholders
- Coordinate internally and externally with CIS and the Multi-State Information Sharing and Analysis Center (MS-ISAC), as well as supporting partners to provide threat expertise
- Aid U.S. election officials with responding to and analyzing threat centric incidents
- On call and after-hours surge support are required
- Other tasks and responsibilities as assigned
Skills
- 2+ years’ experience in an analytical role as a cyber threat intelligence analyst, digital forensics analyst, intelligence analyst, information operations analyst, counterintelligence or terrorism analyst, or similar role
- Demonstrated practical experience and knowledge of OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, Chainalysis Reactor, social media scraping tools, etc.)
- Knowledge of the cyber threat landscape and common network architecture and security concepts (e.g., web content filtering, domain reputation policy, signatures, indicators of compromise, host-based analysis systems, email analysis, etc.)
- Excellent verbal and written communication skills, including the ability to clearly articulate complicated technical matters to a variety of audiences and to adapt to customer personalities
- Experience in a high-paced investigative environment
- Must be capable of obtaining and maintaining a Top-Secret National Security clearance
- The position is open to U.S. citizens and requires a favorably adjudicated DHS Fitness Review for Public Trust Positions
- Formal intelligence analysis training
- Blockchain analysis experience
- Basic knowledge with programming/scripting languages (Python, Bash, Perl, C/C++, or JavaScript) and Structured Query Language (SQL)
- Language proficiencies (e.g., Chinese, Russian, Korean, Arabic, Persian, etc.)
- Certifications in related areas (e.g., GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc.)
Education Requirements
- Bachelor’s degree in Intelligence, Cybersecurity, Data Science, International Affairs, or a related field
- Master's degree in related field
Company Overview
- The Center for Internet Security is focused on enhancing the cybersecurity readiness and response of public and private sector entities. It was founded in 2000, and is headquartered in East Greenbush, New York, USA, with a workforce of 501-1000 employees. Its website is http://cisecurity.org/.
Apply tot his job Apply To this Job